Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2F6ACEDCDAAE11E9A0D2D77BC4F9AE02.roa
File: 2F6ACEDCDAAE11E9A0D2D77BC4F9AE02.roa (raw, json)
Hash identifier: pkh2hfenIiAn8U7TOGhtGj1MoC/TNo4kLFr8AuD1Epw=
Subject key identifier: 29:F7:7E:DE:3C:F9:BD:55:5C:C2:B9:78:0C:7D:7F:19:6A:9C:F9:79
Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00
Certificate serial: 1894
Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2F6ACEDCDAAE11E9A0D2D77BC4F9AE02.roa
Signing time: Tue 18 Feb 2025 17:35:29 +0000
ROA not before: Tue 18 Feb 2025 17:35:28 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 2764
IP address blocks: 203.89.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6292 (0x1894)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EAE3D
Validity
Not Before: Feb 18 17:35:28 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67b4c4e0-8b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9c:d9:42:de:e3:bf:4f:37:eb:f0:c2:ac:0f:
72:af:5c:5a:5e:63:69:bb:a8:81:3b:e2:9d:ea:c2:
78:bb:4e:f9:b9:1d:67:cf:e0:18:eb:0d:28:ff:5d:
dd:7e:0c:a4:8a:04:19:25:43:e0:49:8c:1c:6a:f6:
47:da:05:6c:d6:cc:e9:88:9e:d2:13:db:ee:24:8e:
a9:82:57:f2:92:2d:9b:ec:49:27:ec:f9:06:53:06:
cd:97:cf:62:7e:b4:56:d6:56:40:90:b9:56:8b:5c:
3c:a5:28:f1:58:0b:3c:5a:f0:01:c4:0d:9e:16:08:
89:25:85:a1:c2:5a:4a:54:05:d8:f5:ed:ae:82:e5:
18:64:80:06:d0:34:a6:38:4f:8f:1f:fb:b6:79:a7:
1c:91:3c:94:dc:b4:80:97:89:b5:f0:ab:39:83:be:
fb:b8:5b:9f:2b:11:9a:11:68:94:d4:b8:9d:c8:eb:
96:34:d5:bc:76:7f:d6:36:df:3b:14:7c:94:04:56:
be:3c:55:44:85:14:f9:22:df:fc:c5:09:f6:bd:74:
15:82:7d:c7:34:2e:51:ba:bd:39:fe:45:d6:b0:d1:
9c:20:d2:da:4a:c2:18:17:44:e4:2a:79:83:f6:82:
1e:15:cc:29:a2:4c:7f:c2:b6:fc:bd:54:82:9d:de:
95:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F7:7E:DE:3C:F9:BD:55:5C:C2:B9:78:0C:7D:7F:19:6A:9C:F9:79
X509v3 Authority Key Identifier:
keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/2F6ACEDCDAAE11E9A0D2D77BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.89.80.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f5:d2:2f:94:54:5a:d9:3d:32:10:13:9d:af:db:c8:0f:ed:
b6:6f:f3:25:4f:01:a8:45:9c:38:f4:4c:df:64:1f:08:bc:ee:
1e:a4:cf:aa:e6:cd:97:d8:6a:53:c8:7a:d2:4c:1e:b0:c4:e5:
8d:d5:54:f5:a7:84:f7:7f:88:bf:43:98:c3:f2:a1:8d:35:78:
de:cc:f6:7c:2f:d5:40:64:e7:f2:09:ca:be:5a:2a:5b:cb:5a:
92:67:be:0e:36:31:ae:ac:01:cb:82:3d:66:84:60:00:f6:cd:
79:40:34:80:f2:a9:1d:e7:5e:f9:32:d3:38:a3:ab:d7:3a:05:
19:5d:d0:05:c5:2a:b2:0d:16:4f:48:5f:f9:87:e5:b7:d7:fc:
c7:be:eb:fb:9f:ac:b0:79:72:5a:8c:cf:d4:ed:4b:34:10:49:
49:52:e3:28:3c:b2:fd:68:8c:90:ba:cf:18:7f:5d:76:85:42:
f6:b8:74:6c:b3:28:af:02:03:5e:98:2c:46:31:f4:70:9e:9c:
26:d4:d7:0e:f6:c8:24:cb:5a:eb:91:28:8a:8b:d2:34:c5:f9:
6b:04:b2:50:09:55:5c:7f:70:c3:4f:73:7d:7f:d0:78:f5:62:
a2:11:be:b3:29:95:2a:be:8f:e4:b3:a0:2d:21:a8:45:d7:55:
3f:8f:7a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:40:34 2025 by rpki-client